CiiSetupCommand.php | searchcode

/protected/commands/CiiSetupCommand.php

https://github.com/charlesportwoodii/CiiMS
PHP | 167 lines | 137 code | 16 blank | 14 comment | 14 complexity | 56137f3afaccaa484f7654cb2233770e MD5 | raw file
Possible License(s): MIT

<?php

class CiiSetupCommand extends CConsoleCommand
{

	public function run($args=array())
	{
		if (!isset($args[0]))
			return $this->showCommands();

		switch ($args[0])
		{
			case "generatehash":
				$this->generateHash(isset($args[1]) ? $args[1] : false);
				break;
			case "generatefirstuser":
				$this->generateFirstUser($args[1], $args[2]);
				break;
			default:
				$this->showCommands();
		}		
	}

	// The list of available commands
	private function showCommands()
	{
		$this->log("CiiSetupCommand: A command line helper for automating installation of CiiMS.");
		$this->log("===============================================================");
		$this->log("Usage:");
		$this->log("    php protected/yiic.php ciisetup [arg1] [arg2] [arg3] [...] [argn]\n");
		$this->log("Arguments:");
		$this->log("    generatehash		Generates a hash for CiiMS to use for user data");
		$this->log("    				if '1' is passed as the second arguement, it will generate/update config/params.php");
		$this->log("    generatefirstuser <email> <password>");
		$this->log("					Creates a new admin user for the site, using the provided email and passwword");
		$this->log("					This will also run generatehash if Yii::app()->params['encryptionKey'] is not defined");
		$this->log("    				This command can only be used in headless setups, and will not create an admin user if one already exists");
		$this->log();
	}

	/**
	 * Simple logging command to make life easier
	 * @param  string $message The message we want to output
	 */
	private function log($message="")
	{
		echo $message . "\n";
	}

	/** ======================================== **/

	/**
	 * Generates a new encryption key
	 * @param $overrideConfig 	boolean 	Whether or not to generate the config file
	 *							If set to true, protected/config/params.php will be generated/updated
	 *							With the newly generated hash.
	 */
	private function generateHash($overrideConfig = false)
	{
		$hash = mb_strimwidth(hash("sha512", hash("sha512", hash("whirlpool", md5(time() . md5(time())))) . hash("sha512", time()) . time()), 0, 120);
		
		if ($overrideConfig)
		{
			// Params File Template
			$paramsTemplate = array(
				'yiiPath' => NULL,
				'encryptionKey' => NULL,
				'debug' => 0,
				'trace' => 0
			);

			$params = $paramsTemplate;

			$paramsFile = __DIR__ . '/../config/params.php';

			// If the params file already exists, import it
			if (file_exists($paramsFile))
				$params = CMap::mergeArray($paramsTemplate, require $paramsFile);

			if (empty($params))
				$params = $paramsTemplate;

			$params['encryptionKey'] = $hash;

			$fh = fopen($paramsFile, 'w+');
			fwrite($fh, "<?php return array(\n");
			foreach ($params as $key=>$value)
			{
				if (is_int($value))
					fwrite($fh, "    '$key' => " . (int)$value . ",\n");
				elseif(is_bool($value))
				{
					if ($value)
						fwrite($fh, "    '$key' => true,\n");
					else
						fwrite($fh, "    '$key' => false,\n");
				}
				else
						fwrite($fh, "    '$key' => '$value',\n");

			}
			fwrite($fh, ");");
			fclose($fh);

			$this->log("An encryption key has been added to protected/config/params.php.");
		}
		else
		{
			$this->log("Please add the following to your protected/config/main.php file's params section:");
			$this->log("'encryptionKey' => '$hash'");
		}

		return $hash;
	}

	/**
	 * Generates a new admin user if one does not already exist
	 * @param $username 	string 	The email address of the user
	 * @param $password 	string 	The password for this new user
	 */
	private function generateFirstUser($username, $password)
	{
		if (Yii::app()->params['encryptionKey'] == NULL)
			Yii::app()->params['encryptionKey'] = $this->generateHash(true);

		Yii::import('application.models.Users');

		$count = Users::model()->count();

		if ($count != 0)
			return $this->log('Admin user already exists, aborting generation');

		$connection = Yii::app()->db;
		$connection->createCommand('INSERT INTO users (id, email, password, firstName, lastName, displayName, user_role, status, created, updated) VALUES (NULL, :email, :password, NULL, NULL, "administrator", 9, 1, UTC_TIMESTAMP(), UTC_TIMESTAMP())')
                   ->bindParam(':email',        $username)
                   ->bindParam(':password',     $this->getEncryptedPassword($username, $password, Yii::app()->params['encryptionKey']))
                   ->execute();

        return $this->log("A new admin user has been created");
    }

	/**
     * Generates the appropriate hash for the user
     * @param $email 	string The user's email address
     * @param $password string The user's password
     * @param $hash 	string The provided password
     */
	private function encryptHash($email, $password, $_dbsalt)
    {
        return mb_strimwidth(hash("sha512", hash("sha512", hash("whirlpool", md5($password . md5($email)))) . hash("sha512", md5($password . md5($_dbsalt))) . $_dbsalt), 0, 64);   
    }

    /**
     * Generates an encrypted password for the suer
     * @param $email 	string The user's email address
     * @param $password string The user's password
     * @param $hash 	string The provided password
     */
    public function getEncryptedPassword($email, $password, $hash)
    {
        if (!function_exists('password_hash'))
            require_once YiiBase::getPathOfAlias('ext.bcrypt.bcrypt').'.php';

        $hash = $this->encryptHash($email, $password, $hash);
        return password_hash($hash, PASSWORD_BCRYPT, array('cost' => 13));
    }
}